The corporation Microsoft suffered for years as a result of unfavorable public opinion and humor surrounding the 2002 “trustworthy computing” document. The organization has consistently made investments in fostering a security attitude, and the results are now more readily apparent in the products. The Windows-as-a-service initiative, created to upgrade the operating system’s key defenses against constantly changing threats, and, more recently, the beta testing of Azure Sentinel, a cloud-based SIEM (security information and event management) platform, are noteworthy announcements.
What does it all mean for a platform purchaser of an EDR (endpoint detection and response) SIEM? For starters, it undoubtedly denotes a major rival. Customers that prefer platform purchases and can handle their own security requirements will now have a new choice. This indicates that individuals in the EDR market who are contemplating renowned providers like Tanium, SentinelOne, Carbon Black, and others will start analyzing Windows Defender ATP.
Similar to this, the IBM QRadar, Micro Focus ArcSight, Exabeam, and LogRhythm standalone SIEM vendors are targeted by the Azure Sentinel platform. If you were successful in defending your network with such sophisticated tools, then there is still another platform to take into account.
But hold on, isn’t the lack of a scalable cloud-based platform the underlying issue? The word platform has been highlighted throughout the text. Is the primary impediment to improved security for the normal business the absence of a scalable, cloud-based platform? Actually, no. Even if you provided a normal MSP (managed service provider) or medium-sized business a free license to one of these well-known products, security wouldn’t be significantly improved, and the desired result wouldn’t be achieved. You already know why; you need insane skills, process discipline, and scalable technology that is ideally hosted. Of course, everyone is impacted by the worldwide IT security skills shortage, including MSPs and end users.
Learn more of SIEM by visiting us!